1a12f54f0e6cbc59f108b21e54396bda

Sharing

Copy URL Twitter E-mail

General

Target

1a12f54f0e6cbc59f108b21e54396bda
Size

476KB
MD5

1a12f54f0e6cbc59f108b21e54396bda
SHA1

369021e009d2573e7d8fdccee35451830fb517b4
SHA256

c2eca2accd4a498240c76e3fb9d2ca4657c1ee79a84659a8ea23feab1b8d117e
SHA512

5a2b4bf1bcdc0a8c6f1002554642da488c0d0e75251ff7c2e61271344e4efd26886c1d7acaadf0f763ec1461c55b2fa8de0e66428ca54181346d283b2cb50ebc
SSDEEP

12288:S4E0tPj78W0qXqG2bs2VK2+dqVa2d5cBiVPpcpvq6p:S4E67uq6G2Q2t+d4aJJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a12f54f0e6cbc59f108b21e54396bda

Files

1a12f54f0e6cbc59f108b21e54396bda
.exe windows:4 windows x86 arch:x86

bacd030a2ba75283aab5c9b091980122

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_ReplaceIcon
DrawInsert
ImageList_LoadImageA
InitCommonControlsEx

shell32

ExtractAssociatedIconExW
RealShellExecuteExW

user32

VkKeyScanW
AnimateWindow
CreateAcceleratorTableA
GetScrollRange
RealChildWindowFromPoint
MapDialogRect
SwitchDesktop
RegisterClassExA
MenuItemFromPoint
RegisterClassA
CreateWindowExA
GetKBCodePage
SetCaretBlinkTime
GetKeyboardLayoutList
SendDlgItemMessageW
LoadIconW
VkKeyScanExW
DefWindowProcA
MessageBoxA
CreateIconIndirect
CreateMDIWindowA
GetClassNameA
CharLowerW
ShowWindow
SystemParametersInfoW
SetKeyboardState
DestroyWindow
IntersectRect
GetCapture

advapi32

LookupPrivilegeValueW
RevertToSelf
CryptSetProviderExW
RegCreateKeyW
RegEnumValueA
RegEnumValueW
CryptGetDefaultProviderW
GetUserNameA
RegCreateKeyExW
InitiateSystemShutdownA
RegReplaceKeyW
RegQueryInfoKeyA
CryptAcquireContextA
RegConnectRegistryA
CryptVerifySignatureA
LookupSecurityDescriptorPartsW
AbortSystemShutdownA
CryptHashSessionKey
StartServiceA
DuplicateToken
RegDeleteValueW
RegOpenKeyA
RegLoadKeyW
CryptEnumProviderTypesW
RegSetKeySecurity

kernel32

MultiByteToWideChar
CloseHandle
UnhandledExceptionFilter
SetFilePointer
LocalShrink
LoadLibraryA
InterlockedExchange
LeaveCriticalSection
SetStdHandle
IsBadWritePtr
FreeEnvironmentStringsW
HeapFree
GetStringTypeA
GetCurrentProcess
HeapAlloc
SetComputerNameW
HeapDestroy
GetOEMCP
GetStringTypeW
DeleteCriticalSection
HeapCreate
GetModuleHandleA
TlsGetValue
GetTimeZoneInformation
GetCurrentThreadId
InterlockedIncrement
GetNamedPipeInfo
GetModuleFileNameA
CreateToolhelp32Snapshot
GetCurrentThread
GetStringTypeExW
GetProcAddress
LCMapStringA
GetStartupInfoA
GetEnvironmentStrings
HeapReAlloc
TlsFree
InterlockedDecrement
GetSystemTimeAsFileTime
OpenMutexA
EnterCriticalSection
CompareStringW
TlsSetValue
EnumResourceLanguagesA
SetPriorityClass
GetFileType
SetConsoleCursorInfo
VirtualAlloc
GetCommandLineA
RtlUnwind
GetVersion
FreeEnvironmentStringsA
SetEnvironmentVariableA
ExitProcess
FlushFileBuffers
GetCPInfo
CreateMutexA
GetStdHandle
GetEnvironmentStringsW
VirtualFree
GlobalSize
SetHandleCount
GetFileAttributesW
TerminateProcess
GetVersionExA
GetSystemTime
GetLastError
GetACP
WriteFile
GetCurrentProcessId
CompareStringA
GetTickCount
WideCharToMultiByte
SetLastError
ReadFile
TlsAlloc
LCMapStringW
GetLocalTime
QueryPerformanceCounter
VirtualQuery
InitializeCriticalSection
FindNextFileA

Sections

.text
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bacd030a2ba75283aab5c9b091980122

Headers

File Characteristics

Imports

comctl32

shell32

user32

advapi32

kernel32

Sections

.text Size: 295KB - Virtual size: 294KB

.rdata Size: 53KB - Virtual size: 60KB

.data Size: 101KB - Virtual size: 101KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 295KB - Virtual size: 294KB

.rdata
Size: 53KB - Virtual size: 60KB

.data
Size: 101KB - Virtual size: 101KB

.rsrc
Size: 25KB - Virtual size: 24KB